Privacy Policy
Last updated: May 2026
This Privacy Policy explains how Jacek Winter trading as Doredon ("I", "me", "my") collects, uses, and protects your personal data when you visit doredon.co.uk ("the website") or contact me about my services.
I am committed to protecting your privacy and handling your data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who I Am
Trading name: Doredon
Legal name: Jacek Winter
Website: doredon.co.uk
Contact email: hello@doredon.co.uk
For any questions about how I handle your personal data, please contact me at the email address above.
2. What Personal Data I Collect
When you use this website or get in touch with me, I may collect the following personal data:
- Name - when you submit the contact form
- Email address - when you submit the contact form
- Message content - the details you include in your enquiry
- Technical data - IP address, browser type, device type, and pages visited (collected automatically via Netlify and standard web server logs)
I do not collect payment card details directly. Any payments are processed through third-party payment providers.
3. How I Collect Your Data
I collect your personal data in the following ways:
- Contact form - when you submit an enquiry via the website contact form, hosted and processed by Netlify Forms
- Automatically - technical data such as IP address and browser information is collected when you visit the website
4. Why I Collect Your Data and the Legal Basis
| Purpose | Legal Basis |
|---|---|
| To respond to your enquiry | Legitimate interests (responding to a business enquiry you initiated) |
| To provide website design and development services | Performance of a contract |
| To improve the website and diagnose technical issues | Legitimate interests |
| To comply with legal obligations | Legal obligation |
I do not use your data for automated decision-making or profiling.
5. How Long I Keep Your Data
- Enquiry data (name, email, message): kept for up to 12 months from the date of your enquiry, or for the duration of any resulting client relationship, whichever is longer
- Technical/log data: retained by Netlify in accordance with their own data retention policies (typically 30 days)
Once data is no longer needed, it is securely deleted.
6. Who I Share Your Data With
I do not sell or rent your personal data to any third party.
Your data may be processed by the following third-party service providers as part of operating this website:
- Netlify (netlify.com) - website hosting and form processing; data may be processed in the United States under Netlify's standard contractual clauses and Privacy Shield commitments
- Email provider - used to receive and respond to contact form submissions
All third-party providers are required to process your data securely and only for the purposes I have specified.
7. International Data Transfers
Netlify is based in the United States. When your contact form submission is processed, your data may be transferred outside the UK. This transfer is protected by appropriate safeguards, including Standard Contractual Clauses approved under UK GDPR.
8. Cookies
This website uses minimal cookies. These may include:
- Essential cookies - required for the website to function correctly
- Analytics cookies - if any analytics tools are added in future, this policy will be updated
You can control or disable cookies through your browser settings. Disabling cookies may affect some website functionality.
9. Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of access - you can request a copy of the data I hold about you
- Right to rectification - you can ask me to correct inaccurate data
- Right to erasure - you can ask me to delete your data in certain circumstances
- Right to restrict processing - you can ask me to limit how I use your data
- Right to object - you can object to my processing your data based on legitimate interests
- Right to data portability - you can request your data in a portable format
To exercise any of these rights, please contact me at hello@doredon.co.uk. I will respond within 30 days.
If you are unhappy with how I have handled your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
ICO website: ico.org.uk
ICO helpline: 0303 123 1113
10. Data Security
I take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. The website is served over HTTPS (SSL encrypted). Contact form submissions are handled securely through Netlify Forms.
No method of electronic transmission or storage is 100% secure, and I cannot guarantee absolute security.
11. Links to Other Websites
This website may contain links to third-party websites. I am not responsible for the privacy practices or content of those sites. I encourage you to read their privacy policies when you visit them.
12. Changes to This Policy
I may update this Privacy Policy from time to time. Any changes will be published on this page with an updated "Last updated" date. I encourage you to review this policy periodically.
For any privacy-related queries, please contact: hello@doredon.co.uk